Device security has to start in production. Devices need to be provided with certificates as trust anchors, device-specific keys for authentication, and key material to protect interfaces. Only then is it possible to implement further use cases, e.g. provide secure access to the devices based on these certificates. Consequently a key management solution must be integrated into the embedded device production process.
The optimal security solution has to combine three central aspects: first of all, the cryptographic material required during production must be hosted within the production environment. This ensures availability and low latency. Second, the solution must protect this cryptographic material with a hardware security module. At the same time, it has to limit that material and usage of it in order to provide the necessary protection against attacks. And finally, the local solution server must periodically connect to a key management back-end; this allows keys to be provided to the production environment and also enables central monitoring, logging, remote administration, and reconfiguration.
ESCRYPT’s Production Key Server (PKS) combines all these features in one product and thus provides production sites with a secure solution that is highly reliable, available, and maintainable. It ensures that cryptographic material is injected during device production and enables corresponding end-of-line security testing and, later, product-return analysis. The PKS is part of ESCRYPT’s Key Management Solution with a central back-end infrastructure for managing keys as well as access rights to those keys, including the corresponding monitoring. One of the PKS’s main features is that it works without a permanent connection to any back-end infrastructure, but still guarantees a secure continuous supply of cryptographic keys and certificates.